Hi all,
There is a small articlelive update to address a couple of Cross Site Scripting issues. This is a pretty common issue with a lot of web-based applications, unfortunately we weren’t careful enough with our checks so a couple got in.
Anyway the update can be downloaded from the clientarea.
Enjoy!
***********************************************
* *
* Changelog for ArticleLive version 2005.0.5: *
* *
***********************************************
Stopped sanitizing of data posted through the admin area.
admin/index.php
***********************************************
* *
* Changelog for ArticleLive version 2005.0.4: *
* *
***********************************************
Fixed XSS (cross site scripting) bugs in a generic way
admin/index.php
init.php
New File: includes/classes/class.sanitize.php
***********************************************
* *
* Changelog for ArticleLive version 2005.0.3: *
* *
***********************************************
Fixed XSS (cross site scripting) bug on article comment page
includes/classes/class.article.php